We use cookies to make your experience of our websites better. By using and further navigating this website you accept this. Detailed information about the use of cookies on this website is available by clicking on more information.

On February 25, 2015, Kaspersky Lab announces the commercial release of Kaspersky Endpoint Security 10 for Windows: Service Pack 1. Full version number 10.2.2.10535.

What's new in SP1

Anti-virus technologies:
It is now possible to restore files that have been encrypted by cryptors. Please note: it is only possible to restore files that were attacked while the application was running with the System Watcher component and the option Use behavior stream signatures (BSS) enabled.

Licensing:
A new type of licensing has been added — subscription.
The subscription service provides partners with the option of selling application licenses according to a plan, which allows renewing the license and change the number of computers protected under that license without replacing the activation code; it also allows paying for the license renewal upon a regular schedule.

Full Disk Encryption:

Support of full disk encryption on UEFI systems has been implemented.

Support of full disk encryption on devices with GUID Partition Table has been implemented.

Authentication agent authorization using tokens and smart-cards is now supported.
List of supported devices:

SafeNet eToken PRO 64K (4.2b) (USB),

SafeNet eToken PRO 72K Java (USB),

SafeNet eToken PRO 72K Java (Smart Card),

SafeNet eToken 5100 (USB),

SafeNet eToken 5105 (USB),

SafeNet eToken 7300 (USB),

EMC RSA SID 800 (USB),

ruToken dongle (USB),

Aladdin-RD JaCarta PKI (USB),

Aladdin-RD JaCarta PKI (Smart Card),

Athena IDProtect Laser (USB),

Gemalto IDPrime 510 (SmartCard),

Gemalto IDBridge CT40 (Reader).
Important! Authentication by means of tokens and smart cards is possible only if a strong encryption module is installed.

Support has been added in the authentication agent for entering user names and passwords that contain characters in the following languages: English, Arabic, Spanish, Italian, German, Portuguese, Turkish, and French.

More keyboard layouts are now supported by authentication agent. Keyboard layouts are available for the following languages: English (UK), English (USA), Arabic (Algeria, Morocco, Tunis, AZERTY layout), Spanish (Latin America), Italian, German (Germany and Austria), German (Switzerland), Portuguese (Brazil, ABNT2 layout), Turkish (QWERTY layout), French (France), French (Switzerland).

A new GUI with mouse support has been developed for the authentication agent.

The operating system on a computer with an encrypted system hard drive now loads faster.

A new setting remembers the name of the authentication agent account under which the previous authentication was performed successfully. This setting can be configured in the Kaspersky Security Center policy.

A new application module update mechanism has been implemented (a dedicated service called avpsus). It offers the following functionality:

Updates are installed / rolled back without shutting down the application or interrupting computer protection.

Both critical fixes and new functionality can be installed.

Application status is monitored after updates are installed. Application functionality is restored after crashes.

Integration with Kaspersky Security Center: notifications about available updates, management of update installation, support of phased installation of updates, possibility to apply critical fixes automatically.

Centralized administration of the application through Kaspersky Security Center:

Settings profiles are now supported. Settings profiles let you modify the values of policy settings for individual computers that are covered by the specific policy and match the conditions specified in the profile.

Different access rights can now be assigned to specific functional areas of application settings (Kaspersky Security Center functionality).

The list of events that are relayed to Kaspersky Security Center by default has been shortened. If necessary, users can manually edit the list of events to be relayed to Kaspersky Security Center.

When a new policy of Kaspersky Endpoint Security 10 Service Pack 1 for Windows is created, Application Startup Control is disabled in the policy.

Device Control:

When a rule that blocks the operation of WiFi modules is applied, the component terminates the established WiFi connections.

The interface for managing trusted devices has been improved: the "Device ID" and "Comment" fields have been added.

It is now possible to create rules for trusted devices based on a device ID mask. Possible masks: the "*" symbol represents any number of symbols; the "?" symbol represents any one symbol.

Application Startup Control:

The logic of processing Application Control rules has changed: by default, the application denies application startup only to users that are expressly included in the deny list. The "Deny for other users" setting has been added to Application Startup Control rules to support the logic implemented in previous versions of the application.

The option of generating a test verdict for the "Block by default" implicit rule.

If writing of application dumps and trace files is disabled, the application removes the dumps and trace files from the computer automatically.

The list of installed patches is now recorded in trace files.

The following changes have been made to the application installer:

To install file level encryption (FLE) functionality and/or full disk encryption (FDE) functionality, these components have to be selected specifically after choosing the "Custom installation" option (the "Full installation" option is no longer available).

For convenient deployment of encryption functionality, the distribution kit of the AES encryption module is included in the distribution kit of Kaspersky Endpoint Security 10 Service Pack 1 for Windows. The encryption module is installed only if file level encryption (FLE) functionality and/or full disk encryption (FDE) functionality is installed.

Network drivers are installed only if one of the following components is installed: Mail Anti-Virus, Web Anti-Virus, or IM Anti-Virus, Firewall, Network Attack Blocker, Web Control, or Device Control.

To optimize the load on the Kaspersky Security Center server, Application Startup Control functionality is disabled by default.

Application performance and RAM usage have been optimized.

Installation

To install the application, run the installer file and follow the Setup wizard instructions.

Interoperation of Kaspersky Endpoint Security 10 Service Pack 1 for Windows and AES encryption modules of versions 1.0.0.724 and 1.0.1.814 is not supported.

You can upgrade the following applications to Kaspersky Endpoint Security 10 Service Pack 1 for Windows:

Important! Upgrading of Kaspersky Endpoint Security 10 Service Pack 1 for Windows beta versions (Beta 1, Beta 2, and Beta 3) to Kaspersky Endpoint Security 10 Service Pack 1 for Windows is not supported. The application installation requires removing the previously installed beta version of Kaspersky Endpoint Security. During installation, Kaspersky Endpoint Security detects and allows you to uninstall applications that may affect the performance of the user's computer (even to the point of complete inoperability) when running at the same time as the product. The full list of incompatible software is available at: http://support.kaspersky.com/9371.
You can install the application remotely using Kaspersky Security Center.

Documentation

License agreement

Download

The installer contains encryption tools which use the AES cryptographic algorythm with the effective key length of 256 bit. The installer must be downloaded and used in accordance with local legislation.

Support limitations for Microsoft Windows 8.1

It is not possible to hide Kaspersky Endpoint Security 10 in the Start menu.

Supported virtual platforms

VMWare ESXi 5.5.0 1623387 Update 1

VMWare ESXi 5.5.0 2068190 Update 2

Microsoft Hyper-V 3.0 (Windows Server 2012)

Citrix XenServer 6.2

Citrix XenDesktop 7.5

Citrix Provisioning Server 7.1

Virtual platform support Issues and limitations

To enable Kaspersky Endpoint Security compatibility with Citrix PVS, perform installation with the Ensure compatibility with Citrix PVS option enabled. This option can be enabled in the Setup Wizard or using the command line parameter /pCITRIXCOMPATIBILITY=1. In case of remote installation, you must add the /pCITRIXCOMPATIBILITY=1 key into the kud file.

Installation of Kaspersky Endpoint Security 10 Service Pack 1 to a Microsoft Windows XP virtual machine running on Citrix XenDesktop is not supported.

Using Target Device for creating images of virtual machines with Kaspersky Endpoint Security 10 Service Pack 1 installed that run under Microsoft Windows XP and Microsoft Windows Vista is not supported.

Version 10.2.2.10535: Hardware and Software Requirements

For Kaspersky Endpoint Security 10 for Windows to work properly, the computer must meet the following requirements:

General requirements

Intel Pentium processor 1 GHz or faster

1 GB available RAM

2 GB of free hard disk space

Microsoft Internet Explorer 7.0 or later

Microsoft Windows Installer 3.0 or later

Internet connection for activating the application and for updating databases and application modules.

Operating systems

Microsoft Windows 8.1 Update Pro x86 / х64

Microsoft Windows 8.1 Update Enterprise x86 / х64

Microsoft Windows 8.1 Pro x86 / х64

Microsoft Windows 8.1 Enterprise x86 / х64

Microsoft Windows 8 Pro x86 / х64

Microsoft Windows 8 Enterprise x86 / х64

Microsoft Windows 7 Professional x86 / х64 SP1 and later

Microsoft Windows 7 Enterprise / Ultimate x86 / х64 SP1 and later

Microsoft Windows 7 Professional x86 / х64

Microsoft Windows 7 Enterprise / Ultimate x86 / х64

Microsoft Windows Vista x86 / х64 SP2 or later

Microsoft Small Business Server 2011 Essentials х64

Microsoft Small Business Server 2011 Standard х64

Microsoft Small Business Server 2008 Standard x64

Microsoft Small Business Server 2008 Premium x64

Microsoft Windows Server 2012 R2 Standard х64

Microsoft Windows Server 2012 Foundation / Standard х64

Microsoft Windows MultiPoint Server 2011 x64

Microsoft Windows Server 2008 R2 Standard х64 SP1 and later

Microsoft Windows Server 2008 R2 Standard х64

Microsoft Windows Server 2008 R2 Enterprise х64 SP1 and later

Microsoft Windows Server 2008 R2 Enterprise х64

Microsoft Windows Server 2008 R2 Foundation x64 SP1 and later

Microsoft Windows Server 2008 R2 Foundation x64

Microsoft Windows Server 2008 Standard х86 / х64 SP2 and later

Microsoft Windows Server 2008 Enterprise х86 / х64 SP2 and later

Microsoft Windows Server 2003 R2 Standard x86 / x64 SP2 and later

Microsoft Windows Server 2003 R2 Enterprise x86 / x64 SP2 and later

Microsoft Windows Server 2003 Standard x86 / x64 SP2

Microsoft Windows Server 2003 Enterprise x86 / x64 SP2 and later

Windows Embedded 8.0 Standard x64

Windows Embedded 8.1 Industry Pro x64

Windows Embedded Standard 7 with SP1 x86 / х64

Windows Embedded POSReady 7 x86 / х64

Special considerations and support limitations for embedded systems

It is recommended to run Microsoft Windows Embedded 8.0 Standard x64 (Standard 8) or Microsoft Windows Embedded 8.1 Industry x64 (Industry 8.1) on devices with 2GB or more of RAM.

Support limitations for Microsoft Windows 8.1

It is not possible to hide Kaspersky Endpoint Security 10 in the Start menu.

Supported virtual platforms

VMWare ESXi 5.5.0 1623387 Update 1

VMWare ESXi 5.5.0 2068190 Update 2

Microsoft Hyper-V 3.0 (Windows Server 2012)

Citrix XenServer 6.2

Citrix XenDesktop 7.5

Citrix Provisioning Server 7.1

Virtual platform support issues and limitations

To enable Kaspersky Endpoint Security compatibility with Citrix PVS, perform installation with the Ensure compatibility with Citrix PVS option enabled. This option can be enabled in the Setup Wizard or using the command line parameter /pCITRIXCOMPATIBILITY=1. In case of remote installation, you must add the /pCITRIXCOMPATIBILITY=1 key into the kud file.

Installation of Kaspersky Endpoint Security 10 Service Pack 1 to a Microsoft Windows XP virtual machine running on Citrix XenDesktop is not supported.

Using Target Device for creating images of virtual machines with Kaspersky Endpoint Security 10 Service Pack 1 installed that run under Microsoft Windows XP and Microsoft Windows Vista is not supported.

Version 10.3.3.275: Hardware and Software Requirements

For Kaspersky Endpoint Security 10 for Windows to work properly, the computer must meet the following requirements:

General requirements:

1 GHz or faster processor (with support of the SSE2 instruction set).

RAM:

1 GB (for 32-bit operating systems)

2 GB (for 64-bit operating systems)

2 GB of free hard disk space

Operating systems:

Microsoft Windows 10 Pro / Enterprise x86 / х64

For details about support for Microsoft Windows 10, please refer to this article.

For details about support for Microsoft Windows Server 2019 and Microsoft Windows Server 2016, please refer to this article.

Microsoft Windows Server 2012 R2 Standard х64

Microsoft Windows Server 2012 Foundation / Standard х64

Microsoft Small Business Server 2011 Standard х64

Microsoft Windows Server 2008 R2 Standard / Enterprise х64 SP1

Microsoft Windows Server 2008 Standard / Enterprise х64 SP2

Server platform support limitations

The ReFS file system is supported with limitations.

The Server Core and Cluster Mode configurations are not supported.

Disk encryption (Kaspersky FDE) and encryption of files on server platforms are not supported.

For other details regarding support for server platforms, please refer to this article.

Supported virtual platforms

VMWare ESXi 6.0.0 3620759

Microsoft Hyper-V 3.0

Citrix XenServer 7.0

Citrix XenDesktop 7.13

Citrix Provisioning Services 7.13

Issues and limitations:

Full disk encryption (FDE) on Hyper-V virtual machines is not supported.

Full disk encryption (FDE) and encryption of files and folders (FLE) are not supported on Citrix virtual platforms.

For Kaspersky Endpoint Security for Windows to be compatible with Citrix PVS, the Ensure compatibility with Citrix PVS option must be enabled during installation. This option can be enabled in the Setup Wizard or using the command line parameter /pCITRIXCOMPATIBILITY=1. In case of remote installation, you must add the /pCITRIXCOMPATIBILITY=1 key to the kud file.

For other details regarding support for virtual platforms, please refer to this article.